216.73.216.133

CVE-2026-39835

· Published 22/05/2026 04:16 · Modified 22/05/2026 04:16

Labels: CVE-2026-39835 2026-05-22CVE-2026-39835[email protected]

Essential information

Published
22/05/2026 04:16
Modified
22/05/2026 04:16
Author
Creator
CISA KEV
No
CWE

Description

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
golang / certchecker cpe:2.3:a:golang:certchecker:*:*:*:*:*:*:*:*
golang / ssh server cpe:2.3:a:golang:ssh_server:*:*:*:*:*:*:*:*

References